Career Opportunities >> Cloud Security Information Analyst

Cloud Security Information Analyst

Summary

Nimbis Services, Inc. is growing, and we are looking for a Cloud Security Information Analyst to work from our office in Columbus, OH. The Cloud Security Information Analyst on the Information Assurance team at Nimbis will be responsible for supporting the Air Force Research Laboratory Trusted Silicon Stratus Distributed Transition Environment (TSS-DTE). The Cloud Security Information Analyst will support the Director of Information Assurance to ensure TSS-DTE AWS Gov Cloud environment software develop life cycle (SDLC) engineering design, development, testing, and implementation complies with DoD Risk Management Framework (RMF) and FedRAMP certification goals as well as provide operational technical analysis and cybersecurity engineering support to the DevOps team.

As one of the authorities and subject matter experts (SME) in cybersecurity engineering, leads system design and analysis; you will recommend implementing tools and applications to improve TSS-DTE’s cybersecurity capabilities and posture. Leverage industry-based best practices to ensure IA compliance, integration, automation, interoperability and scalability when engineering cybersecurity solutions. In addition to engineering design of major long-term efforts, conducts engineering technical analysis and cybersecurity assessments to resolve complex issues for the development and implementation of operational programs. Will also be responsible for writing DoD RMF/FedRAMP plans identified in NIST SP 800-53, such as access control plan, configurations management plans, system security plans, incident response plans, access control, configurations, etc. This position will require about 10% travel.

Primary Responsibilities

  • Conducts cybersecurity engineering by generating recommendations, designing, implementing, and transitioning solutions to improve cybersecurity posture, allow for mission assurance, and comply with all DoD policies.
  • Support system integration, system evaluation and analysis, site surveys, verification and validation, cost and risk, and supportability and effectiveness analyses for total systems and architectures.
  • Conduct advanced research and analysis of current systems to develop strategic implementation plans and designs, document and mitigate risks as well as lessons learned, and provide regular updates.
  • Ensure all requirements, customer and functional, are met though system analysis across all levels to include hardware/software, concept, design, fabrication, test, installation, operation, maintenance and disposal.
  • Support DevOps team to Research, collaborate, and strategize with vendors and various groups, such as Systems Security Engineering, R&D, Server and Network teams, and provide recommendations on how to leverage emerging technology to improve cybersecurity and mission assurance.
  • Address unusually complex problems with consultative direction through the application of advanced cyber security technologies expertise, security principles, theories, and concepts.
  • Maintain a strong understanding of cybersecurity, networking architecture, servers, systems design, virtual hosts, and configuration management and licensing.
  • Provide expertise to contribute to the security assessment and compliance activities to maintain accreditation to include mitigation and documentation.
  • Analyze and research vulnerabilities to identify risk to provide early warning related to a variety of cyber threats.

Specifications

Job Closing Date:
Position is open until filled.

Apply Now


Required Qualifications:

  • Bachelor’s Degree or equivalent number of years’ experience.
  • 8-10 years information security experience with a focus on cloud solutions
  • CAP or SSCP Certification
  • Experience with cyber security DevOps software System Development Life Cycle
  • Strong experience with cloud security strategy, cloud provider ecosystems (AWS) infrastructure, application and data designs to hybrid or fully cloud enabled practices.
  • Advanced cybersecurity systems engineering design and operations in multi-enclave cloud environments.
  • Possess clear understanding of security protocols and standards and have experience with software security architectures.
  • Experience writing DoD RMF/FedRAMP cloud certification artifacts/documentation identified in NIST 800-53 security control family e.g. System security plans, incident response plans, access control plans, configurations management plans, etc.
  • Ability to clearly and concisely document Standard Operating Procedures and procedures.

Preferred Qualifications:

  • Working experience with DoD IA Specific technologies/solutions: HBSS, ACAS/Nessus, McAfee EndPoint, SolarWinds, Splunk, SCCM, Active Directory, Desktop EndPoint Solutions, and Identify Management (SailPoint)
  • Certifications Preferred:
    • DoD 8570 IAT II/IAM II Level certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP, CAP or higher)
    • ITIL Foundations or Intermediate Certificates
    • Systems Cybersecurity Engineering Certificates
    • CISSP
    • Agile, Lean/Six Sigma – Green Belt

About NIMBIS

Nimbis Services, Inc. is a privately held software company delivering web-based technical computer application services hosted on cloud and high-performance computing (HPC) platforms. Our software development environment is an open and collaborative one that is team oriented, creative and fun, with a focus on high integrity and customer satisfaction. Our goal is to outperform the competition in the areas of employment, service, security and safety. We strive to provide high quality products and services to our customers. We consider the employees of Nimbis to be our most valuable resource. The work and attitude of our employees is important to the success of Nimbis. 

We offer competitive benefits that include a flexible work schedule, competitive salary and full benefits. The benefits include medical, dental, vision and 401K. In addition, you will receive paid time for holidays, vacation, sick days and end of year shutdown.

Nimbis Services is an Equal Employment Opportunity (EEO) Employer.

Applicants have rights under Federal Employment Laws: Equal Employment Opportunity (EEO), Family and Medical Leave Act (FMLA), Employee Polygraph Protection Act (EPPA).

If you are interested in joining the team, please fill out our online application. We look forward to talking to you further!